193787SdesPlease see the README for instructions common to all platforms and 293787Sdesdescriptions of the options mentioned here. 393787Sdes 493787Sdes 593787Sdes Linux. 693787Sdes 793787SdesMost modern Linux distributions use Linux-PAM with a password changing 893787Sdesmodule which understands "use_authtok". Thus, you may choose which 993787Sdesmodule prompts for the old password, things should work either way. 1093787Sdes 1193787Sdes 1293787Sdes FreeBSD. 1393787Sdes 1494691SdesAs of this writing (April 2002), FreeBSD-current is moving to OpenPAM 1594691Sdeswhich pam_passwdqc already includes support for. The next step would 1694691Sdesbe for FreeBSD to start actually using PAM from password changing. 1794691SdesOnce that becomes a reality, you should be able to use pam_passwdqc 1894691Sdeswith FreeBSD. 1993787Sdes 2093787Sdes 2193787Sdes Solaris. 2293787Sdes 2393787Sdespam_passwdqc has to ask for the old password during the update phase. 2493787SdesUse "ask_oldauthtok=update check_oldauthtok" with pam_passwdqc and 2593787Sdes"use_first_pass" with pam_unix. 2693787Sdes 2793787SdesYou will likely also need to set "max=8" in order to actually enforce 2893787Sdesnot-so-weak passwords with the obsolete "traditional" crypt(3) hashes 2993787Sdesthat most Solaris systems use. Of course this way you only get about 3093787Sdesone third of the functionality of pam_passwdqc. 31